Re: lcc-win32
From: Keith Thompson (kst-u_at_mib.org)
Date: 10/10/04
- Next message: Guillaume: "Re: lcc-win32"
- Previous message: jab3: "Re: Help! Raw Socket CheckSum"
- In reply to: jacob navia: "Re: lcc-win32"
- Next in thread: Keith Thompson: "Re: lcc-win32"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sat, 09 Oct 2004 23:29:59 GMT
jacob navia <jacob@jacob.remcomp.fr> writes:
[...]
> All functions in the library should return an error code if confronted
> with invalid inputs. It suffices for a malitious program to pass wrong
> data (or a program that contained an error already passed uninitialized
> memory, etc) to provoke memory overwrites.
strlen(NULL) invokes undefined behavior. strlen(x) invokes undefined
behavior if x doesn't point to a null-terminated string. Do you
advocate changing the definition of strlen() so it doesn't invoke
undefined behavior in such cases?
If you want to implement a bulletproof replacement for the C standard
library, go ahead and do it. If it becomes widespread enough, it
might even be incorporated into the next version of the standard.
-- Keith Thompson (The_Other_Keith) kst-u@mib.org <http://www.ghoti.net/~kst> San Diego Supercomputer Center <*> <http://users.sdsc.edu/~kst> We must do something. This is something. Therefore, we must do this.
- Next message: Guillaume: "Re: lcc-win32"
- Previous message: jab3: "Re: Help! Raw Socket CheckSum"
- In reply to: jacob navia: "Re: lcc-win32"
- Next in thread: Keith Thompson: "Re: lcc-win32"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
